-
CVSS Score
-Basic Information
Technical Details
Vulnerability Intelligence
Miggo AI
Miggo AIA Semantic Attack on Google Gemini - Read the Latest Research
A Semantic Attack on Google Gemini - Read the Latest Research
Miggo AI
| Package Name | Ecosystem | Vulnerable Versions | First Patched Version |
|---|---|---|---|
| com.coravy.hudson.plugins.github:github | maven | <= 1.29.0 | 1.29.1 |
Miggo AIRoot Cause AnalysisThe commit diff shows the method doVerifyCredentials was modified to add @RequirePOST and Jenkins.ADMINISTER permission checks. The test case GitHubServerConfigTest_SEC804.java explicitly validates that unprivileged users can no longer exploit this endpoint. The vulnerability description confirms this method allowed unauthorized credential validation, matching the patched security flaws.